Davidjmiller Similarity — known CVE vulnerabilities
Every CVE whose affected-product data names Davidjmiller Similarity, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-3971 — CVSS 4.3 (medium): The Similarity WordPress plugin through 3.0 does not have CSRF check in place when resetting its settings, which could allow attackers to…
CVE-2024-3972 — CVSS 4.3 (medium): The Similarity WordPress plugin through 3.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which…